Security Advisory

CVE-2006-6356

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2006-12-07 01:00:00

Last updated 2024-08-07 20:26:45

Assigner mitre

State PUBLISHED

Description

Multiple cross-site scripting (XSS) vulnerabilities in templates/link_temp.php in PHPNews 1.3.0 allow remote attackers to inject arbitrary web script or HTML via the (1) url, (2) id, (3) subject, (4) username, or (5) time parameter.

← Browse all CVEs View on cve.org ↗